Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/0mT7ffIFraVVS4iCTBM0Ol9PtVg.roa
File: 0mT7ffIFraVVS4iCTBM0Ol9PtVg.roa (raw, json)
Hash identifier: um7+gc9JCBj7RC+sexPCTSkClHdmVDXYLydIdpkRHKo=
Subject key identifier: D2:64:FB:7D:F2:05:AD:A5:55:4B:88:82:4C:13:34:3A:5F:4F:B5:58
Certificate issuer: /CN=37ceaa626cbd89052f3545335dfdb31a13383004
Certificate serial: 018571D79511ED9BDB7B9506536A11065872
Authority key identifier: 37:CE:AA:62:6C:BD:89:05:2F:35:45:33:5D:FD:B3:1A:13:38:30:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N86qYmy9iQUvNUUzXf2zGhM4MAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/0mT7ffIFraVVS4iCTBM0Ol9PtVg.roa
Signing time: Mon 02 Jan 2023 09:37:11 +0000
ROA not before: Mon 02 Jan 2023 09:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213144
IP address blocks: 194.76.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:95:11:ed:9b:db:7b:95:06:53:6a:11:06:58:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ceaa626cbd89052f3545335dfdb31a13383004
Validity
Not Before: Jan 2 09:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d264fb7df205ada5554b88824c13343a5f4fb558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:67:fd:ad:48:54:5d:bc:e2:d1:d9:96:bb:bf:
47:69:a1:94:c9:bc:52:60:ba:c5:b1:e0:49:cb:e3:
24:f6:b8:47:b4:66:87:e4:05:93:fd:a0:9a:44:ea:
c4:e6:65:3f:6b:03:e9:87:d8:94:dd:7c:68:33:39:
57:10:5c:eb:73:b2:04:6f:03:3f:17:6d:61:ac:74:
65:92:f8:fc:fd:89:12:89:4f:18:95:65:98:c6:83:
7a:a9:5d:74:31:05:ee:96:f1:68:ba:9e:fc:cf:e6:
ab:38:3f:a1:e7:3f:09:97:83:cd:85:3c:57:b9:72:
12:84:4f:d7:64:d4:53:db:e7:6c:44:46:4e:fb:ad:
ea:68:a8:c1:7a:dd:0b:cd:51:d3:9d:ca:c7:0c:23:
72:4b:3e:b0:73:f4:db:6b:42:b3:3d:64:4b:c8:c1:
07:a6:7b:86:ee:52:66:8f:67:09:f6:1d:6d:11:c6:
9c:69:36:7b:71:9c:a9:12:c4:46:e4:3b:c6:38:1d:
f0:bf:59:c4:0a:cc:6c:ec:79:90:bb:57:04:e1:4c:
14:b7:0e:f5:1d:0a:b5:22:4f:9b:f8:91:74:04:88:
f0:19:14:50:94:f4:38:5f:27:2e:b8:d7:40:cf:e4:
43:26:ce:10:ae:11:cb:c0:da:d7:12:04:8f:87:f6:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:64:FB:7D:F2:05:AD:A5:55:4B:88:82:4C:13:34:3A:5F:4F:B5:58
X509v3 Authority Key Identifier:
keyid:37:CE:AA:62:6C:BD:89:05:2F:35:45:33:5D:FD:B3:1A:13:38:30:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N86qYmy9iQUvNUUzXf2zGhM4MAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/0mT7ffIFraVVS4iCTBM0Ol9PtVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/N86qYmy9iQUvNUUzXf2zGhM4MAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.143.0/24
Signature Algorithm: sha256WithRSAEncryption
11:e0:83:78:2b:c6:de:b5:e8:f6:30:e1:db:fd:90:86:55:d0:
42:fc:f9:5f:9e:d9:44:50:27:95:c8:94:d6:74:65:95:ee:7c:
7e:6b:42:cb:b3:8f:73:c3:21:81:93:f0:2c:69:c0:bc:0c:47:
03:30:95:99:32:e5:c5:a0:cc:d4:52:31:d2:f0:f9:57:43:5e:
bc:c7:04:e4:1e:f6:fe:70:38:2c:5f:ac:f2:6d:41:c6:70:45:
48:3d:ed:17:67:d1:a8:a4:19:c9:c4:c0:64:08:94:c2:49:1f:
0f:8b:7c:c4:36:48:37:38:89:46:a0:b9:6b:a5:93:31:f8:46:
8f:2d:85:7d:db:57:97:27:a5:33:e5:26:a3:00:6e:33:26:98:
0d:d7:2e:41:b7:cd:8b:4e:f8:12:45:4d:9a:d5:48:2e:6c:f0:
3a:63:57:e6:23:24:d0:16:ac:71:d9:43:9d:b4:4f:62:69:44:
f6:01:68:5d:36:67:82:32:d4:c3:1a:6b:92:f1:38:c7:48:b9:
dd:b1:fb:eb:e7:dd:5e:8a:93:93:47:af:2e:7a:bf:df:19:89:
b6:e1:4f:6c:43:4b:b2:09:6b:28:30:49:0f:15:74:c8:04:c7:
a4:c8:7b:5e:b2:91:4f:bd:a2:ce:6d:81:de:f1:f4:f4:1a:0c:
a5:75:c0:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx15UR7Zvbe5UGU2oRBlhyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3Y2VhYTYyNmNiZDg5MDUyZjM1NDUzMzVkZmRiMzFhMTMz
ODMwMDQwHhcNMjMwMTAyMDkzNzExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjY0ZmI3ZGYyMDVhZGE1NTU0Yjg4ODI0YzEzMzQzYTVmNGZiNTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWf9rUhUXbzi0dmWu79HaaGUybxS
YLrFseBJy+Mk9rhHtGaH5AWT/aCaROrE5mU/awPph9iU3XxoMzlXEFzrc7IEbwM/
F21hrHRlkvj8/YkSiU8YlWWYxoN6qV10MQXulvFoup78z+arOD+h5z8Jl4PNhTxX
uXIShE/XZNRT2+dsREZO+63qaKjBet0LzVHTncrHDCNySz6wc/Tba0KzPWRLyMEH
pnuG7lJmj2cJ9h1tEcacaTZ7cZypEsRG5DvGOB3wv1nECsxs7HmQu1cE4UwUtw71
HQq1Ik+b+JF0BIjwGRRQlPQ4XycuuNdAz+RDJs4QrhHLwNrXEgSPh/Y0MwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNJk+33yBa2lVUuIgkwTNDpfT7VYMB8GA1UdIwQY
MBaAFDfOqmJsvYkFLzVFM139sxoTODAEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjg2cVlteTlpUVV2TlVVelhmMnpHaE00TUFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9hZDg5OTQtNTFmMS00YjY1LWFjYTAt
ZTE1YThiNzBlOGQyLzEvMG1UN2ZmSUZyYVZWUzRpQ1RCTTBPbDlQdFZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9hZDg5OTQtNTFmMS00YjY1LWFjYTAtZTE1YThiNzBlOGQy
LzEvTjg2cVlteTlpUVV2TlVVelhmMnpHaE00TUFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkyPMA0G
CSqGSIb3DQEBCwUAA4IBAQAR4IN4K8betej2MOHb/ZCGVdBC/PlfntlEUCeVyJTW
dGWV7nx+a0LLs49zwyGBk/AsacC8DEcDMJWZMuXFoMzUUjHS8PlXQ168xwTkHvb+
cDgsX6zybUHGcEVIPe0XZ9GopBnJxMBkCJTCSR8Pi3zENkg3OIlGoLlrpZMx+EaP
LYV921eXJ6Uz5SajAG4zJpgN1y5Bt82LTvgSRU2a1UgubPA6Y1fmIyTQFqxx2UOd
tE9iaUT2AWhdNmeCMtTDGmuS8TjHSLndsfvr591eipOTR68uer/fGYm24U9sQ0uy
CWsoMEkPFXTIBMekyHtespFPvaLObYHe8fT0GgyldcCh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:14 2024 by rpki-client on console-fra.rpki-client.org